GeneralInformation

Hostnames	aditmicrosys.com
Domains	aditmicrosys.com
Country	India
City	Artist Village
Organization	Iconic Designs
ISP	CtrlS
ASN	AS18229
Operating System	Windows

WebTechnologies

JavaScript frameworks

AngularJS

JavaScript libraries

jQuery1.7.1

Video players

YouTube

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2014-4078	The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

OpenPorts

21 25 53 80 82 110 143 587 1433 2121 8010 8080 8081

-370734890 | 2024-04-14T05:35:39.076998

21 / tcp

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST 
    MDTM 
    MIC *
    MKD 
    MODE 
    NLST 
    NOOP 
    OPTS 
    PASS 
    PASV 
    PBSZ 
    PORT 
    PROT 
    PWD 
    QUIT 
    REIN 
    REST 
    RETR 
    RMD 
    RNFR 
    RNTO 
    SITE 
    SIZE 
    SMNT 
    STAT 
    STOR 
    STOU 
    STRU 
    SYST 
    TYPE 
    USER 
    XCUP 
    XCWD 
    XMKD 
    XPWD 
    XRMD 
214 HELP command successful.
211-Extended features supported:
 LANG EN*
 UTF8
 AUTH TLS;TLS-C;SSL;TLS-P;
 PBSZ
 PROT C;P;
 CCC
 HOST
 SIZE
 MDTM
 REST STREAM
211 END

2054628939 | 2024-04-14T16:26:48.003892

25 / tcp

220 ***********************************************************************************
250-test.com [224.191.255.68], this server offers 4 extensions
250-AUTH LOGIN
250-SIZE 40960000
250-XXXA
250 AUTH=LOGIN

1509372378 | 2024-04-16T05:33:36.130296

80 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 06 Nov 2015 16:07:19 GMT
Accept-Ranges: bytes
ETag: "26579136ad18d11:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Server: no-server
Date: Tue, 16 Apr 2024 05:33:02 GMT
Content-Length: 4015

-567380549 | 2024-04-18T09:50:27.921364

82 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 05 Apr 2024 06:33:36 GMT
Accept-Ranges: bytes
ETag: "808997302387da1:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Server: no-server
X-Powered-By-Plesk: PleskWin
Date: Thu, 18 Apr 2024 09:49:51 GMT
Content-Length: 78258

-471102630 | 2024-03-30T14:32:17.901525

110 / tcp

+OK Welcome to MailEnable POP3 Server
+OK Capability list follows
TOP
USER
UIDL
.

-1046998560 | 2024-04-16T22:21:05.850796

143 / tcp

* OK IMAP4rev1 server ready at 04/17/24 03:50:30
* CAPABILITY IMAP4rev1 IMAP4 AUTH=LOGIN AUTH=CRAM-MD5 IDLE CHILDREN UIDPLUS
A001 OK CAPABILITY completed
A002 BAD UNKNOWN Command
A003 BAD UNKNOWN Command
* BYE IMAP4rev1 server terminating connection
A004 OK LOGOUT Initiated

433258033 | 2024-04-18T17:37:24.688829

587 / tcp

220 mail.test.com ESMTP MailEnable Service, Version: 10.46-- ready at 04/18/24 23:06:47
250-test.com [224.104.67.212], this server offers 4 extensions
250-AUTH LOGIN
250-SIZE 40960000
250-HELP
250 AUTH=LOGIN

-1213655426 | 2024-04-13T10:17:10.258814

1433 / tcp

MS-SQL NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: ADITMICR12588
  NetBIOS Domain Name: ADITMICR12588
  NetBIOS Computer Name: ADITMICR12588
  DNS Domain Name: AditMicr12588
  FQDN: AditMicr12588

-370734890 | 2024-04-14T08:16:54.588132

2121 / tcp

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST 
    MDTM 
    MIC *
    MKD 
    MODE 
    NLST 
    NOOP 
    OPTS 
    PASS 
    PASV 
    PBSZ 
    PORT 
    PROT 
    PWD 
    QUIT 
    REIN 
    REST 
    RETR 
    RMD 
    RNFR 
    RNTO 
    SITE 
    SIZE 
    SMNT 
    STAT 
    STOR 
    STOU 
    STRU 
    SYST 
    TYPE 
    USER 
    XCUP 
    XCWD 
    XMKD 
    XPWD 
    XRMD 
214 HELP command successful.
211-Extended features supported:
 LANG EN*
 UTF8
 AUTH TLS;TLS-C;SSL;TLS-P;
 PBSZ
 PROT C;P;
 CCC
 HOST
 SIZE
 MDTM
 REST STREAM
211 END

1556443579 | 2024-04-17T22:59:13.008843

8010 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Tue, 23 Mar 2021 09:56:58 GMT
Accept-Ranges: bytes
ETag: "675dedcca1fd71:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Server: no-server
X-Powered-By-Plesk: PleskWin
Date: Wed, 17 Apr 2024 22:58:37 GMT
Content-Length: 139

1489525118 | 2024-04-18T10:33:39.111626

8080 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 18 Apr 2024 10:33:03 GMT
Connection: close
Content-Length: 315

-1231282161 | 2024-04-16T05:56:49.687667

8081 / tcp

HTTP/1.1 401 Unauthorized
Cache-Control: private
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server: no-server
Access-Control-Allow-Origin: *
Date: Tue, 16 Apr 2024 05:56:16 GMT
Content-Length: 1293

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>

43.242.215.231

Last Seen: 2024-04-18

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-370734890 | 2024-04-14T05:35:39.076998
21 / tcp

Microsoft ftpd

2054628939 | 2024-04-14T16:26:48.003892
25 / tcp

Cisco PIX sanitized smtpd

1509372378 | 2024-04-16T05:33:36.130296
80 / tcp

Microsoft IIS httpd8.5

-567380549 | 2024-04-18T09:50:27.921364
82 / tcp

Microsoft IIS httpd8.5

-471102630 | 2024-03-30T14:32:17.901525
110 / tcp

MailEnable POP3 Server

-1046998560 | 2024-04-16T22:21:05.850796
143 / tcp

433258033 | 2024-04-18T17:37:24.688829
587 / tcp

MailEnable smptd10.46--

-1213655426 | 2024-04-13T10:17:10.258814
1433 / tcp

MS-SQL Server 2012 SP4RTW/PCU411.0.7001.0

-370734890 | 2024-04-14T08:16:54.588132
2121 / tcp

Microsoft ftpd

1556443579 | 2024-04-17T22:59:13.008843
8010 / tcp

Microsoft IIS httpd8.5

1489525118 | 2024-04-18T10:33:39.111626
8080 / tcp

Microsoft HTTPAPI httpd2.0

-1231282161 | 2024-04-16T05:56:49.687667
8081 / tcp

Microsoft IIS httpd8.5

Products

Pricing

Contact Us

43.242.215.231

Last Seen: 2024-04-18

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-370734890 | 2024-04-14T05:35:39.076998 21 / tcp

2054628939 | 2024-04-14T16:26:48.003892 25 / tcp

1509372378 | 2024-04-16T05:33:36.130296 80 / tcp

-567380549 | 2024-04-18T09:50:27.921364 82 / tcp

-471102630 | 2024-03-30T14:32:17.901525 110 / tcp

-1046998560 | 2024-04-16T22:21:05.850796 143 / tcp

433258033 | 2024-04-18T17:37:24.688829 587 / tcp

-1213655426 | 2024-04-13T10:17:10.258814 1433 / tcp

-370734890 | 2024-04-14T08:16:54.588132 2121 / tcp

1556443579 | 2024-04-17T22:59:13.008843 8010 / tcp

1489525118 | 2024-04-18T10:33:39.111626 8080 / tcp

-1231282161 | 2024-04-16T05:56:49.687667 8081 / tcp

Products

Pricing

Contact Us

-370734890 | 2024-04-14T05:35:39.076998
21 / tcp

2054628939 | 2024-04-14T16:26:48.003892
25 / tcp

1509372378 | 2024-04-16T05:33:36.130296
80 / tcp

-567380549 | 2024-04-18T09:50:27.921364
82 / tcp

-471102630 | 2024-03-30T14:32:17.901525
110 / tcp

-1046998560 | 2024-04-16T22:21:05.850796
143 / tcp

433258033 | 2024-04-18T17:37:24.688829
587 / tcp

-1213655426 | 2024-04-13T10:17:10.258814
1433 / tcp

-370734890 | 2024-04-14T08:16:54.588132
2121 / tcp

1556443579 | 2024-04-17T22:59:13.008843
8010 / tcp

1489525118 | 2024-04-18T10:33:39.111626
8080 / tcp

-1231282161 | 2024-04-16T05:56:49.687667
8081 / tcp